source-git / firewalld

Clone
Source Code
GIT

Files

  1.   84cb3c58a8da2d44d82127e733d580d8f2efe40b
  2.   src
  3.   tests
  4.   regression
  5.   rhbz1601610.at
Blob Blame History Raw 
FWD_START_TEST([ipset duplicate entries])
AT_KEYWORDS(ipset rhbz1601610)

CHECK_IPSET

FWD_CHECK([-q --new-ipset=foobar --permanent --type=hash:net])
FWD_RELOAD

FWD_CHECK([-q --ipset=foobar --add-entry=10.1.1.0/22])
FWD_CHECK([-q --ipset=foobar --add-entry=10.1.2.0/22], 13, ignore, ignore)
FWD_CHECK([-q --ipset=foobar --add-entry=10.2.0.0/22])
FWD_CHECK([--ipset=foobar --get-entries], 0, [dnl
10.1.1.0/22
10.2.0.0/22
])
NFT_LIST_SET([foobar], 0, [dnl
table inet firewalld {
set foobar {
type ipv4_addr
flags interval
elements = { 10.1.0.0/22, 10.2.0.0/22 }
}
}
])
IPSET_LIST_SET([foobar], 0, [dnl
Name: foobar
Type: hash:net
Members:
10.1.0.0/22
10.2.0.0/22
])

FWD_CHECK([-q --ipset=foobar --remove-entry=10.1.1.0/22])
FWD_CHECK([--ipset=foobar --get-entries], 0, [dnl
10.2.0.0/22
])
NFT_LIST_SET([foobar], 0, [dnl
table inet firewalld {
set foobar {
type ipv4_addr
flags interval
elements = { 10.2.0.0/22 }
}
}
])
IPSET_LIST_SET([foobar], 0, [dnl
Name: foobar
Type: hash:net
Members:
10.2.0.0/22
])

FWD_CHECK([-q --permanent --ipset=foobar --add-entry=10.1.1.0/22])
FWD_CHECK([--permanent --ipset=foobar --get-entries], 0, [dnl
10.1.1.0/22
])
FWD_CHECK([-q --permanent --ipset=foobar --remove-entry=10.1.1.0/22])
FWD_CHECK([--permanent --ipset=foobar --get-entries], 0, [
])

dnl rhbz 1644834
FWD_CHECK([-q --ipset=foobar --add-entry=10.3.0.0/22])
FWD_CHECK([-q --runtime-to-permanent])
FWD_RELOAD
NFT_LIST_SET([foobar], 0, [dnl
table inet firewalld {
set foobar {
type ipv4_addr
flags interval
elements = { 10.2.0.0/22, 10.3.0.0/22 }
}
}
])
IPSET_LIST_SET([foobar], 0, [dnl
Name: foobar
Type: hash:net
Members:
10.2.0.0/22
10.3.0.0/22
])

dnl rhbz 1644834, again with IndividualCalls=yes
AT_CHECK([sed -i 's/^IndividualCalls.*/IndividualCalls=yes/' ./firewalld.conf])
FWD_RELOAD
NFT_LIST_SET([foobar], 0, [dnl
table inet firewalld {
set foobar {
type ipv4_addr
flags interval
elements = { 10.2.0.0/22, 10.3.0.0/22 }
}
}
])
IPSET_LIST_SET([foobar], 0, [dnl
Name: foobar
Type: hash:net
Members:
10.2.0.0/22
10.3.0.0/22
])

FWD_END_TEST([-e '/ERROR: COMMAND_FAILED:.*already added.*/d'dnl
              -e '/ERROR: COMMAND_FAILED:.*element.*exists/d'dnl
              -e '/Kernel support protocol versions/d'])

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation